STIGQter: STIG Summary: Juniper Router RTR Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 12 Feb 2021:

The Juniper router must be configured to produce audit records containing information to establish where the events occurred.

DISA Rule

SV-217026r639663_rule

Vulnerability Number

V-217026

Group Title

SRG-NET-000076-RTR-000001

Rule Version

JUNI-RT-000210

Severity

CAT II

CCI(s)

• CCI-000132 - The information system generates audit records containing information that establishes where the event occurred.

Weight

10

Fix Recommendation

Configure the router to log events containing information to establish where the events occurred as shown in the example below.

[edit system syslog]
set file LOG_FILE any any

Check Contents

Review the router configuration to verify that events are logged containing information to establish where the events occurred as shown in the example below.

system {
host-name XYZ;
…
…
…
}
syslog {
file LOG_FILE {
any any;
}
}
}

If the router is not configured to produce audit records containing information to establish to establish where the events occurred, this is a finding.

Vulnerability Number

V-217026

Documentable

False

Rule Version

JUNI-RT-000210

Severity Override Guidance

Review the router configuration to verify that events are logged containing information to establish where the events occurred as shown in the example below.

system {
host-name XYZ;
…
…
…
}
syslog {
file LOG_FILE {
any any;
}
}
}

If the router is not configured to produce audit records containing information to establish to establish where the events occurred, this is a finding.

Check Content Reference

M

Target Key

4032

Comments